incrediBILL - 10:18 pm on Jul 30, 2008 (gmt 0)

Here's some further Wifi and SSL fun from an Insecurity article on Infoworld [infoworld.com]:

Another interesting issue my friend noticed was how many HTTPS-enabled Web sites did not implement SSL correctly -- users' log-in names and passwords were being sent in clear text. This included communications to remotely accessed security devices, portals, and firewalls.

This article is a couple of years old and I would like to hope much of this insecurity has been fixed since it was written but I wouldn't risk it because there is no patch for stupidity.

[edited by: incrediBILL at 10:26 pm (utc) on July 30, 2008]